Logo Questions Linux Laravel Mysql Ubuntu Git Menu
 

Elastic Beanstalk security patches

I currently use Ubuntu with unattended-upgrades on all my ec2-instances, to keep any nasty holes closed, but when running apps via Elastic beanstalk i can't see any option on how to handle patches to them. The only alternative is to manually log in to them and run yum.

Have anyone thought about how to handle security patches on Elastic Beanstalk-instances?

like image 591
glance Avatar asked Apr 22 '13 16:04

glance


People also ask

Is Elastic Beanstalk outdated?

Release: Elastic Beanstalk Amazon Linux AMI platforms are deprecated on July 8, 2021. This release announces the deprecation of AWS Elastic Beanstalk platforms based on Amazon Linux AMI (aka AL1). Final retirement date is set to June 30, 2022.

Is Beanstalk secure?

Encryption & Dedicated InfrastructureCustomer data for all accounts are accessed via secure protocols such as HTTPS and SSH. Additionally, all passwords are encrypted on our servers and databases. We run a dedicated environment behind firewalls with constant internal and external monitoring.

Who is responsible for patching AWS?

Patch Management – AWS is responsible for patching and fixing flaws within the infrastructure, but customers are responsible for patching their guest OS and applications.


1 Answers

We added the following to our .ebextensions/01run.config file to address this issue:

commands:
  security_updates: 
    command: "yum update -y --security"
like image 145
Mike Carson Avatar answered Sep 19 '22 05:09

Mike Carson